mod_auth_cas 1.0.7 error in apache error_log

Fred Day ayeryier at yahoo.com
Thu Sep 4 13:41:21 EDT 2008 

Thank you for your reply.  The CASValidateURL and  CASProxyValidateURL targets are not set up.  I found examples with what they return but need to figure out how to set one up ( what they are sent etc. ).  Obviously, I need to revisit the server setup ... I thought it was all set.   Weel, at least I now know where to be spending my time.
Thank you again for your help ... you figured it out right away.
 

--- On Tue, 9/2/08, Matthew J. Smith <matt.smith at uconn.edu> wrote:

From: Matthew J. Smith <matt.smith at uconn.edu>
Subject: Re: mod_auth_cas 1.0.7 error in apache error_log
To: ayeryier at yahoo.com, "Yale CAS mailing list" <cas at tp.its.yale.edu>
Date: Tuesday, September 2, 2008, 7:22 AM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The error you are seeing may indicate that your CASValidateURL is
returning a blank (or non-XML) page.  Can you verify that URL?  Can you
access that URL via your browser?

Also, note that CASProxyValidateUrl doesn't do anything (yet).

Fred Day wrote:
> Hi,
> first, in a nutshell, pleasehelp with the following apache error log
> message :
> MOD_AUTH_CAS: error retrieving XML document for CASv2 response: XML
> parser error code: no element found (3)
>  
> Okay, now for the details.
> We are running apache 2.2.3-11 ( httpd-2.2.3-11.el5_1.3 and
> httpd-devel-2.2.3-11.el5_1.3 rpm packages ) on a redhat 5 linux server. 
> I downloaded and installed mod_auth_cas version 1.0.7.  I set some of
> the settings in httpd.conf ( "CASLoginUrl",
"CASProxyValidateUrl",
> "CASValidateUrl", and a couple of others ) and set
"CASValidateServer"
> to "Off" so as not to worry now about certificate issues.  The
urls set
> above are https urls. 
> I then set up a location block in httpd.conf with the lines:
>  
>   Options none
>   AuthName "CAS test 2"
>   AuthType CAS
>   CASScope /
>   require valid-user
>  
> If I then try to use a browser and navigate to a test html page within
> the location directory, it correctly brings me to the cas server login
> page ( in this case a luminis server ) but when it redirects me back out
> to the requested page ( with an appended
"?tcket=<blahblah>" ), it gives
> me a 401 "Authorization Required" error page.  The result is the
same if
> I first login to the cas server ( i.e. luminis portal ) and then try to
> open the test page.
>  
> apache's error log ( error_log ) says:
>   
> MOD_AUTH_CAS: error retrieving XML document for CASv2 response: XML
> parser error code: no element found (3)
>  
> Note that the linux box on which apache and mod_auth_cas are running has
> "perl-XML-SAX-0.14-5" and
"perl-XML-Parser-2.34-6.1.2.2.1" installed as
> well as numerous other xml packages.
>  
> Any ideas ?
> Thanks for any help anyone can provide.
>  
>  
> 
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas


- --
Matthew J. Smith
University of Connecticut ITS
matt.smith at uconn.edu
PGP KeyID: 0xE9C5244E
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIvTAjGP63pOnFJE4RAi8YAJ9c6qullwpIAYCcJ7mYUGHOGFBXtACfduAy
TFxAXHzTTOByPciuu3q+taI=
=n19H
-----END PGP SIGNATURE-----



      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080904/22b55a52/attachment.html

More information about the cas mailing list